We claim: 

1 . A computer program product for providing a secure, integrated device with dynamically 
selectable capabilities, the computer program product embodied on one or more computer-usable 
media and comprising: 

computer-readable program code means for operating a security core which provides 
security functions; and 

computer-readable program code means for securely operably connecting one or more 
components to the security core, such that the security core can vouch for authenticity of each 
securely operably connected component, 

wherein the security core and the operably connected components thereby comprise the 
secure integrated device. 

2. The computer program product according to Claim 1, wherein selected ones of the 
operable connections are made using one or more buses of the secure integrated device. 

3. The computer program product according to Claim 1, wherein selected ones of the 
operable connections are made using a wireless connection between respective ones of the 
components and the security core. 

4. The computer program product according to Claim 3, wherein the wireless connections 
use Secure Sockets Layer (SSL) data encryption or an equivalent which provides mutual 
authentication of both endpoints, negotiation of a time-limited key agreement with secure passage 
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of a selected encryption key, and periodic renegotiation of the time-limited key agreement with a 
new encryption key. 

5. The computer program product according to Claim 1, wherein selected ones of the secure 
operable connections are provided when the security core is manufactured. 

6. The computer program product according to Claim 1, wherein the components comprise 
one or more of (1) input/output components and (2) application processing components. 

7. The computer program product according to Claim 1, wherein the computer-readable 
program code means for securely operably connecting further comprises computer-readable 
program code means for authenticating the operably connected component to the security core. 

8 . The computer program product according to Claim 7, wherein the computer-readable 
program code means for authenticating provides a unique identifier of the operably connected 
component to the security core. 

9. The computer program product according to Claim 1 , wherein the computer-readable 
program code means for securely operably connecting is activated by a hardware reset of the 
component, and wherein the hardware reset is activated by operably connecting of the 
component. 
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1 10. The computer program product according to Claim 7, wherein the computer-readable 

2 program code means for authenticating is activated during execution of computer-readable 

3 program code stored on the component, and wherein the execution of the stored computer- 

4 readable program code is activated by a hardware reset of the component. 

1 11. The computer program product according to Claim 7, wherein the computer-readable 

2 program code means for authenticating is securely stored on the component 

1 12. The computer program product according to Claim 7, further comprising 

^ computer-readable program code means for authenticating the security core to the operably 

^ connected component. 

I 1 13. The computer program product according to Claim 7, wherein the computer-readable 

*'-*2 program code means for authenticating the operably connected component further comprises 

3 computer-readable program code means for using public key cryptography. 

S -5 

1 14. The computer program product according to Claim 12, wherein the computer-readable 

2 program code means for authenticating the security core further comprises computer-readable 

3 program code means for using public key cryptography. 

1 15. The computer program product according to Claim 1, wherein the secure integrated 

2 device is a pervasive computing device. 
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1 16. The computer program product according to Claim 1, wherein one or more cryptographic 

2 keys are securely stored in each component, and wherein at least one of the securely stored keys 

3 is used by the computer-readable program code means for securely operably connecting each 

4 component. 

1 17. The computer program product according to Claim 1, wherein one or more cryptographic 

2 keys are securely stored in the secure integrated device. 

v'Jl 18. The computer program product according to Claim 1, further comprising computer- 

[ Ji readable program code means for authenticating a user of the secure integrated device. 

n 1 19. The computer program product according to Claim 1, further comprising computer- 

! ,!i 2 readable program code means for securely performing a transaction using the secure integrated 

J«3 device. 

1 20. The computer program product according to Claim 19, further comprising: 

2 computer-readable program code means for detecting whether all components 

3 participating in the securely performed transaction remain operably connected to the secure 

4 integrated device during the securely performed transaction; and 
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5 computer-readable program code means for aborting the securely performed transaction if 

6 one or more of the participating components fails to remain operably connected to the secure 

7 integrated device during the securely performed transaction. 

1 21. The computer program product according to Claim 19, further comprising: 

2 computer-readable program code means for detecting whether all components 

3 participating in the securely performed transaction remain operably connected to the secure 

4 integrated device during the securely performed transaction; and 

5 computer-readable program code means for marking the securely performed transaction as 
\% not secure if one or more of the participating components fails to remain operably connected to 

■ [j the secure integrated device during the securely performed transaction. 

«. 1 22. The computer program product according to Claim 19, wherein the computer-readable 

! |;2 program code means for securely performing a transaction further comprises computer-readable 

•■»j3 program code means for digitally notarizing, by the security core, an output data stream created 

4 by a selected one of the operably connected components of the secure integrated device. 

1 23. The computer program product according to Claim 22, wherein the computer-readable 

2 program code means for digitally notarizing further comprises: 

3 computer-readable program code means for authenticating the selected operably 

4 connected component to the security core; 
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5 computer-readable program code means for computing, by the security core, a hash value 

6 over each of a plurality of segments of the output data stream, wherein a boundary between 

7 segments is determined by an elapsed time value; 

8 computer-readable program code means for hashing, by the security core, a combination 

9 of ( 1) the hash value for each segment and (2) the unique identifier of the selected operably 

1 0 connected component, thereby creating a hashed data block for each segment; 

1 1 computer-readable program code means for digitally signing, by the security core, the 

12 hashed data block for each segment using a private key of the security core; and 

13 computer-readable program code means for providing the digitally signed hashed data 

•|4 block for each segment along with the combination for each segment as the digital notarization of 

S|5 the segments which comprise the output data stream. 

« 1 26. The computer program product according to Claim 25, wherein the computer-readable 

r*2 program code means for authenticating further comprises computer-readable program code means 

;;;*3 for using a unique identifier of the selected operabby connected component, where the unique 

1 ' "'A identifier is digitally signed by the selected operably connected component using a first private key 

5 associated with the selected operably connected component. 

1 27. The computer program product according to Claim 25, wherein authenticity of selected 

2 ones of the digitally notarized segments of the output data stream may be separately verified using 

3 a public key of the security core. 
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1 28. The computer program product according to Claim 23 or Claim 25, further comprising: 

2 computer-readable program code means for authenticating a user of the secure integrated 

3 device; and 

4 computer-readable program code means for including an identification of the authenticated 

5 user in the combination. 

1 29. The computer program product according to Claim 23 or Claim 25, wherein the private 

2 key of the security core is securely stored in the secure integrated device. 

^4 30. The computer program product according to Claim 23, further comprising computer- 

! i readable program code means for verifying authenticity of the output data stream by a receiver of 

i i ! 3 the output data stream and the digitally signed hashed data block, using a public key of the 

, 4 security core, and for concluding that the output data stream is authentic if the verification 

\ (c 5 succeeds. 

' 1 31. The computer program product according to Claim 30, wherein the computer-readable 

2 program code means for verifying authenticity further comprises obtaining the public key from a 

3 digital certificate of the security core. 

1 32. The computer program product according to Claim 30, wherein the computer-readable 

2 program code means for verifying authenticity further comprises concluding that the output data 

3 stream has not been tampered with if the verification succeeds. 
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1 33. The computer program product according to Claim 1, further comprising computer- 

2 readable program code means for dynamically revising functionality in a selected one of the 

3 securely operably connected components of the secure integrated device by securely applying a 

4 firmware update to the selected one, such that the security core can continue to vouch for the 

5 authenticity of the selected one. 

1 34. The computer program product according to Claim 1, wherein capabilities of the secure 

2 integrated device are dynamically revised by subsequent operation of the computer-readable 

•3 program code means for securely operably connecting, the subsequent operation being activated 

: l 4 upon operably connecting a new component to the security core, wherein the new component 

I .i^5 authenticates itself to the security core, with a result of the authentication being that the 

r . 6 capabilities of the secure integrated device are thereby augmented with capabilities of the new 

Yl component. 

p "l 35. The computer program product according to Claim 1, wherein the security core is located 

2 on a selected one of the operably connected components, and wherein the security core and the 

3 selected one are connected to a common bus. 

1 36. The computer program product according to Claim 1, wherein a second security core is 

2 located on a selected one of the operably connected components, and wherein the security core 

3 and the second security core operate in combination. 
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1 37. A computer program product for improving security of transactions in portable devices, 

2 the computer program product embodied on one or more computer-usable media and comprising: 

3 computer-readable program code means for providing security function in a security core 

4 of a portable device; 

5 computer-readable program code means for operably connecting one or more components 

6 to the security core, wherein each component provides input/output capabilities or application 

7 processing capabilities; and 

8 computer-readable program code means for verifying authenticity of each operably 
w9 connected component, such that the security core can vouch for transactions created by the 
jib operably connected components while the operably connected components remain operably 
jll connected. 

Ml 38. The computer program product according to Claim 37, wherein the computer-readable 

^2 program code means for verifying authenticity further comprises computer-readable program 

[ ' *3 code means for performing a security handshake between the security core and the operably 

4 connected component upon activation of the computer-readable program code means for 

5 operably connecting. 

1 39. The computer program product according to Claim 38, wherein the computer-readable 

2 program code means for performing uses Secure Sockets Layer encryption to encrypt data or an 

3 equivalent which provides mutual authentication of both endpoints, negotiation of a time-limited 
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4 key agreement with secure passage of a selected encryption key, and periodic renegotiation of the 

5 time-limited key agreement with a new encryption key. 

1 40. The computer program product according to Claim 38, wherein each operably connected 

2 component has associated therewith a digital certificate, a private cryptographic key and a 

3 cryptographically-associated public key, and a unique device identifier that is used to identify data 

4 originating from the operably connected component. 

1 41 . A system for providing a secure, integrated device with dynamically selectable capabilities, 

•==t> comprising: 

Y$ a security core which provides security functions; 

^4 one or more components; 

Si 5 means for operating the security core; and 

1% means for securely operably connecting the components to the security core, such that the 

!;f7 security core can vouch fbr authenticity of each securely operably connected component, 
r 8 wherein the security core and the operably connected components thereby comprise the 

9 secure integrated device. 

1 42. The system according to Claim 41, wherein selected ones of the operable connections are 

2 made using one or more buses of the secure integrated device. 
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1 43. The system according to Claim 41, wherein selected ones of the operable connections are 

2 made using a wireless connection between respective ones of the components and the security 

3 core. 

1 44. The system according to Claim 43, wherein the wireless connections use Secure Sockets 

2 Layer (SSL) data encryption or an equivalent which provides mutual authentication of both 

3 endpoints, negotiation of a time-limited key agreement with secure passage of a selected 

4 encryption key, and periodic renegotiation of the time-limited key agreement with a new 

5 encryption key. 

; ; 1 45. The system according to Claim 41, wherein selected ones of the secure operable 

; !-£ connections are provided when the security core is manufactured. 

vH. 46. The system according to Claim 41, wherein the components comprise one or more of (1) 

' : % input/output components and (2) application processing components. 

1 47. The system according to Claim 41, wherein the means for securely operably connecting 

2 further comprises means for authenticating the operably connected component to the security 

3 core. 

1 48. The system according to Claim 47, wherein the means for authenticating provides a unique 

2 identifier of the operably connected component to the security core. 
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1 49. The system according to Claim 41, wherein the means for securely operably connecting is 

2 activated by a hardware reset of the component, and wherein the hardware reset is activated by 

3 operably connecting of the component. 

1 50. The system according to Claim 47, wherein the means for authenticating is activated 

2 during execution of instructions stored on the component, and wherein the execution of the stored 

3 instructions is activated by a hardware reset of the component. 

1 51. The system according to Claim 47, wherein the means for authenticating are securely 

^1 stored on the component. 

I % 52. The system according to Claim 47, further comprising means for authenticating the 

n 2 security core to the operably connected component. 

53 . The system according to Claim 47, wherein the means for authenticating the operably 

5 ""2 connected component further comprises means for using public key cryptography. 

1 54. The system according to Claim 52, wherein the means for authenticating the security core 

2 further comprises means for using public key cryptography. 



1 



2 



55. The system according to Claim 41, wherein the secure integrated device is a pervasive 
computing device. 
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1 56. The system according to Claim 4 1 , wherein one or more cryptographic keys are securely 

2 stored in each component, and wherein at least one of the securely stored keys is used by the 

3 means for securely operably connecting each component. 

1 57. The system according to Claim 4 1 , wherein one or more cryptographic keys are securely 

2 stored in the secure integrated device. 

1 58. The system according to Claim 41, further comprising means for authenticating a user of 
■ 3-2 the secure integrated device. 

Kl 59. The system according to Claim 41, further comprising means for securely performing a 

« 2 transaction using the secure integrated device. 

60. The system according to Claim 59, further comprising: 

2 means for detecting whether the components remain operably connected to the secure 

3 integrated device during the securely performed transaction; and 

4 means for aborting the securely performed transaction if one or more of the components 

5 fails to remain operably connected to the secure integrated device during the securely performed 

6 transaction. 



1 



61. The system according to Claim 59, further comprising: 
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2 means for detecting whether all components remain operably connected to the secure 

3 integrated device during the securely performed transaction; and 

4 means for marking the securely performed transaction as not secure if one or more of the 

5 components fails to remain operably connected to the secure integrated device during the securely 

6 performed transaction. 



1 62. The system according to Claim 59, wherein the means for securely performing a 

2 transaction further comprises means for digitally notarizing, by the security core, an output data 

3 stream created by a selected one of the operably connected components of the secure integrated 
■ l H device. 

I Si 63. The system according to Claim 62, wherein the means for digitally notarizing further 

v. 2 comprises: 

j'&3 means for authenticating the selected operably connected component to the security core; 

^4 means for computing, by the security core, a hash value over the output data stream; 

■ = 5 means for hashing, by the security core, a combination of (1) the hash value and (2) the 

6 unique identifier of the selected operably connected component, thereby creating a hashed data 

7 block; 

8 means for digitally signing, by the security core, the hashed data block using a private key 

9 of the security core; and 

10 means for providing the digitally signed hashed data block along with the combination as 

1 1 the digital notarization of the output data stream. 



RSW920000096US1 -65- 



1 64. The system according to Claim 63, wherein the means for authenticating further comprises 

2 means for using a unique identifier of the selected operably connected component, where the 

3 unique identifier is digitally signed by the selected operably connected component using a first 

4 private key associated with the selected operably connected component. 

1 65 . The system according to Claim 62, wherein the means for digitally notarizing further 

2 comprises: 

3 means for authenticating the selected operably connected component to the security core; 
'.§4 means for computing, by the security core, a hash value over each of a plurality of 

J :n 5 segments of the output data stream, wherein a boundary between segments is determined by an 

= h6 elapsed time value; 

i'Ti 

I 7 means for hashing, by the security core, a combination of (1) the hash value for each 

\H segment and (2) the unique identifier of the selected operably connected component, thereby 

J9 creating a hashed data block for each segment; 

1 10 means for digitally signing, by the security core, the hashed data block for each segment 

1 1 using a private key of the security core; and 

12 means for providing the digitally signed hashed data block for each segment along with the 

1 3 combination for each segment as the digital notarization of the segments which comprise the 

14 output data stream. 
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1 66. The system according to Claim 65, wherein the means for authenticating further comprises 

2 means for using a unique identifier of the selected operably connected component, where the 

3 unique identifier is digitally signed by the selected operably connected component using a first 

4 private key associated with the selected operably connected component. 

1 67. The system according to Claim 65, wherein authenticity of selected ones of the digitally 

2 notarized segments of the output data stream may be separately verified using a public key of the 

3 security core. 

vLJ 68. The system according to Claim 63, further comprising: 

; 4 means for authenticating a user of the secure integrated device; and 

means for including an identification of the authenticated user in the combination. 

hi 69. The system according to Claim 65, wherein the private key of the security core is securely 

;2 stored in the secure integrated device. 

1 70. The system according to Claim 65, further comprising means for verifying authenticity of 

2 the segments of the output data stream by a receiver of the segments of the output data stream 

3 and the digitally signed hashed data blocks for the segments, using a public key of the security 

4 core, and for concluding that each segment of the output data stream is authentic if the 

5 verification succeeds. 
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1 71 . The system according to Claim 70, wherein the means for verifying authenticity further 

2 comprises obtaining the public key from a digital certificate of the security core. 

1 72. The system according to Claim 70, wherein the means for verifying authenticity further 

2 comprises concluding that the output data stream has not been tampered with if the verification 

3 succeeds. 

1 73 . The system according to Claim 41, further comprising: 

2 means for dynamically revising functionality in a selected one of the securely operably 

33 connected components of the secure integrated device by securely applying a firmware update to 

J ; :i 4 the selected one; and 

,1;;5 means for requiring the selected one to re-authenticate itself to the security core, such that 

7 6 the security core can continue to vouch for the authenticity of the selected one. 

y 1 74. The system according to Claim 41, wherein capabilities of the secure integrated device are 

2 dynamically revised by subsequent operation of the means for securely operably connecting, the 

3 subsequent operation being activated upon operably connecting a new component to the security 

4 core, wherein the new component authenticates itself to the security core, with a result of the 

5 authentication being that the capabilities of the secure integrated device are thereby augmented 

6 with capabilities of the new component. 
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1 75. The system according to Claim 41, wherein the security core is located on a selected one 

2 of the operably connected components, and wherein the security core and the selected one are 

3 connected to a common bus. 

1 76. The system according to Claim 41, wherein a second security core is located on a selected 

2 one of the operably connected components, and wherein the security core and the second security 

3 core each provide security functions for one or more components of the secure integrated device. 

1 77. A system for improving security of transactions in portable devices, comprising: 

'2 means for providing security function in a security core of a portable device; 

% means for operably connecting one or more components to the security core, wherein each 

!f component provides input/output capabilities or application processing capabilities; and 

5 means for verifying authenticity of each operably connected component, such that the 

6 security core can vouch for transactions created by the operably connected components while the 
| operably connected components remain operably connected. 

1 78. The system according to Claim 77, wherein the means for verifying authenticity further 

2 comprises means for performing a security handshake between the security core and the operably 

3 connected component upon activation of the means for operably connecting. 

1 79. The system according to Claim 78, wherein the means for performing uses Secure Sockets 

2 Layer encryption to encrypt data or an equivalent which provides mutual authentication of both 
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endpoints, negotiation of a time-limited key agreement with secure passage of a selected 
encryption key, and periodic renegotiation of the time-limited key agreement with a new 
encryption key. 



1 80. The system according to Claim 78, wherein each operably connected component has 

2 associated therewith a digital certificate, a private cryptographic key and a cryptographically- 

3 associated public key, and a unique device identifier that is used to identify data originating from 

4 the operably connected component. 

;;} 81. A method of providing a secure, integrated device with dynamically selectable capabilities, 

5 comprising step of 

| operating a security core which provides security functions; and 

4 securely operably connecting one or more components to the security core, such that the 

I security core can vouch for authenticity of each securely operably connected component, 

<f wherein the security core and the operably connected components thereby comprise the 

7 secure integrated device. 

1 82. The method according to Claim 81, wherein selected ones of the operable connections are 

2 made using one or more buses of the secure integrated device. 
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83. The method according to Claim 81, wherein selected ones of the operable connections are 
made using a wireless connection between respective ones of the components and the security 
corfc. 



1 84. The method according to Claim 83, wherein the wireless connections use Secure Sockets 

2 Layer (SSL) data encryption or an equivalent which provides mutual authentication of both 

3 endpoints, negotiation of a time-limited key agreement with secure passage of a selected 

4 encryption key, and periodic renegotiation of the time-limited key agreement with a new 

5 encryption key. 



p 85. The method according to Claim 81, wherein selected ones of the secure operable 
lijfi connections are provided when the security core is manufactured. 



mJ 86. The method according to Claim 81, wherein the components comprise one or more of (1) 

S12 input/output components and (2) application processing components. 

1 87. The method according to Claim 81, wherein the step of securely operably connecting 

2 further comprises the step of authenticating the operably connected component to the security 

3 core. 

1 88. The method according to Claim 87, wherein the step of authenticating provides a unique 

2 identifier of the operably connected component to the security core. 
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1 89. The method according to Claim 8 1 , wherein the step of securely operably connecting is 

2 activated by a hardware reset of the component, and wherein the hardware reset is activated by j 

3 operably connecting of the component. 

1 90. The method according to Claim 87, wherein the step of authenticating is activated during 

2 execution of instructions stored on the component, and wherein the execution of the stored 

3 instructions is activated by a hardware reset of the component. 

i 
! 

1 91. The method according to Claim 87, wherein instructions for performing the authenticating 
t;i2 step are securely stored on the component. 

92. The method according to Claim 87, further comprising the step of authenticating the 
I 2 security core to the operably connected component. 

s II 93 . The method according to Claim 87, wherein the step of authenticating the operably 
^*2 connected component further comprises using public key cryptography. 

1 94. The method according to Claim 92, wherein the step of authenticating the security core 

2 further comprises using public key cryptography. 

1 95. The method according to Claim 8 1 , wherein the secure integrated device is a pervasive 

2 computing device. 
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1 96. The method according to Claim 81, wherein one or more cryptographic keys are securely 

2 stored in each component, and wherein at least one of the securely stored keys is used by the step 

3 of securely operably connecting each component. 

1 97. The method according to Claim 8 1 , wherein one or more cryptographic keys are securely 

2 stored in the secure integrated device. 

1 98. The method according to Claim 81, further comprising the step of authenticating a user of 

u|2 the secure integrated device. 

^:fl 99. The method according to Claim 81, further comprising the step of securely performing a 

] 2 transaction using the secure integrated device. 

Ml 100. The method according to Claim 99, further comprising the steps of: 

^"2 detecting whether the components remain operably connected to the secure integrated 

3 device during the securely performed transaction; and 

4 aborting the securely performed transaction if one or more of the components fails to 

5 remain operably connected to the secure integrated device during the securely performed 

6 transaction. 



1 



101. The method according to Claim 99, further comprising steps of: 
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2 detecting whether all components remain operably connected to the secure integrated 

3 device during the securely performed transaction; and 

4 marking the securely performed transaction as not secure if one or more of the 

5 components fails to remain operably connected to the secure integrated device during the securely 

6 performed transaction. 

1 102. The method according to Claim 99, wherein the step of securely performing a transaction 

2 further comprises the step of digitally notarizing, by the security core, an output data stream 

3 created by a selected one of the operably connected components of the secure integrated device. 



I n l 1 03 . The method according to Claim 1 02, wherein the step of digitally notarizing further 

^il comprises the steps of 

I 3 authenticating the selected operably connected component to the security core; 

lM computing, by the security core, a hash value over the output data stream; 

; I5 hashing, by the security core, a combination of (1) the hash value and (2) the unique 

|i? *6 identifier of the selected operably connected component, thereby creating a hashed data block; 

7 digitally signing, by the security core, the hashed data block using a private key of the 

8 security core; and 

9 providing the digitally signed hashed data block along with the combination as the digital 
10 notarization of the output data stream. 
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1 104. The method according to Claim 103, wherein the step of authenticating further comprises 

2 using a unique identifier of the selected operably connected component, where the unique 

3 identifier is digitally signed by the selected operably connected component using a first private key 

4 associated with the selected operably connected component. 

1 105. The method according to Claim 102, wherein the digitally notarizing step further 

2 comprises the steps of: 

3 authenticating the selected operably connected component to the security core; 

4 computing, by the security core, a hash value over each of a plurality of segments of the 
w5 output data stream, wherein a boundary between segments is determined by an elapsed time 
J ! j5 value; 

'1?7 hashing, by the security core, a combination of (1) the hash value for each segment and (2) 

8 the unique identifier of the selected operably connected component, thereby creating a hashed 

I 9 data block for each segment; 

' lb digitally signing, by the security core, the hashed data block for each segment using a 

"Tl private key of the security core; and 

12 providing the digitally signed hashed data block for each segment along with the 

13 combination for each segment as the digital notarization of the segments which comprise the 

14 output data stream. 



1 



2 



106. The method according to Claim 105, wherein the authenticating step further comprises 
using a unique identifier of the selected operably connected component, where the unique 
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3 identifier is digitally signed by the selected operably connected component using a first private key 

4 associated with the selected operably connected component. 

1 107. The method according to Claim 105, wherein authenticity of selected ones of the digitally 

2 notarized segments of the output data stream may be separately verified using a public key of the 

3 security core. 

1 108. The method according to Claim 105, further comprising the steps of: 

2 authenticating a user of the secure integrated device; and 

^ including an identification of the authenticated user in the combination. 

^■II 109. The method according to Claim 103, wherein the private key of the security core is 

« 2 securely stored in the secure integrated device. 

\ ;;;fl 1 10. The method according to Claim 105, further comprising the step of verifying authenticity 

^ 2 of the segments of the output data stream by a receiver of the segments of the output data stream 

3 and the digitally signed hashed data blocks for the segments, using a public key of the security 

4 core, and concluding that each segment of the output data stream is authentic if the verification 

5 succeeds. 

1 111. The method according to Claim 1 1 0, wherein the step of verifying authenticity further 

2 comprises obtaining the public key from a digital certificate of the security core. 
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1 1 12. The method according to Claim 1 10, wherein the step of verifying authenticity further 

2 comprises concluding that the output data stream has not been tampered with if the verification 

3 succeeds. 

1 113. The method according to Claim 8 1 , further comprising the steps of: 

2 dynamically revising functionality in a selected one of the securely operably connected 

3 components of the secure integrated device by securely applying a firmware update to the selected 

4 one; and 

95 requiring the selected one to re-authenticate itself to the security core, such that the 

6 security core can continue to vouch for the authenticity of the selected one. 

1 114. The method according to Claim 8 1 , wherein capabilities of the secure integrated device 

^2 are dynamically revised by subsequent operation of the securely operably connecting step, the 

; 0 subsequent operation being activated upon operably connecting a new component to the security 

4 core, wherein the new component authenticates itself to the security core, with a result of the 

5 authentication being that the capabilities of the secure integrated device are thereby augmented 

6 with capabilities of the new component. 

1 115. The method according to Claim 81, wherein the security core is located on a selected one 

2 of the operably connected components, and wherein the security core and the selected one are 

3 connected to a common bus. 
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1 116. The method according to Claim 81, wherein a second security core is located on a 

2 selected one of the operably connected components, and wherein the security core and the second 

3 security core each provide security functions for one or more components of the secure integrated 

4 device. 

1 1 17. A method of improving security of transactions in portable devices, comprising steps of: 

2 providing security function in a security core of a portable device; 

3 operably connecting one or more components to the security core, wherein each 
>M component provides input/output capabilities or application processing capabilities; and 

verifying authenticity of each operably connected component, such that the security core 

*;;{> can vouch for transactions created by the operably connected components while the operably 

1 1 connected components remain operably connected. 

s ;4 118. The method according to Claim 117, wherein the verifying authenticity step further 

p 2 comprises the step of performing a security handshake between the security core and the operably 

3 connected component upon activation of the step of operably connecting. 

1 119. The method according to Claim 118, wherein the performing step uses Secure Sockets 

2 Layer encryption to encrypt data or an equivalent which provides mutual authentication of both 

3 endpoints, negotiation of a time-limited key agreement with secure passage of a selected 
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4 encryption key, and periodic renegotiation of the time-limited key agreement with a new 

5 encryption key. 

1 120. The method according to Claim 1 18, wherein each operably connected component has 

2 associated therewith a digital certificate, a private cryptographic key and a cryptographically- 

3 associated public key, and a unique device identifier that is used to identify data originating from 

4 the operably connected component. 
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